POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2160
Expires: Wed, 07 Dec 2022 18:34:32 GMT
Date: Wed, 07 Dec 2022 17:58:32 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E00EAAD18FFA9F5181FE540B156608DF88565B09E98CA78B87EBA97F3FBC6E79"
Last-Modified: Wed, 07 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11455
Expires: Wed, 07 Dec 2022 21:09:27 GMT
Date: Wed, 07 Dec 2022 17:58:32 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2505
Expires: Wed, 07 Dec 2022 18:40:17 GMT
Date: Wed, 07 Dec 2022 17:58:32 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 17:08:04 GMT
age: 3028
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: l2ZDTZdpxSlSIP55W5WK6OLd1UWGxbYiJcoObjo81TirddEzbGHKYmxGR6y9Hg1odmt0SSW2P7Ho8dTvFqee8A==
x-amz-request-id: 67G7C90HQ2KVD57F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 17:49:27 GMT
age: 545
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /irtu/index.php?QBOT.zip HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
199.188.200.95
HTTP/1.1 301 Moved Permanently
content-type: text/html
keep-alive: timeout=5, max=100
content-length: 707
date: Wed, 07 Dec 2022 17:58:32 GMT
server: LiteSpeed
location: https://foodheed.com/irtu/index.php?QBOT.zip
x-turbo-charged-by: LiteSpeed
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Wed, 07 Dec 2022 17:58:32 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 17:07:55 GMT
age: 3038
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:33 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 01:10:26 GMT
Expires: Tue, 13 Dec 2022 01:10:25 GMT
Etag: "40d3b325990a497a476c0e245a1d8532fd8d3536"
Cache-Control: max-age=457311,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775f2669bcc8b4f9-OSL
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 384
Cache-Control: max-age=141281
Date: Wed, 07 Dec 2022 17:58:33 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 09:13:14 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
|
GET /irtu/index.php?QBOT.zip HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
199.188.200.95
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://foodheed.com/irtu/?QBOT.zip
x-litespeed-cache: hit
content-length: 0
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ueepCGk4m1Q+yToqoZK8JA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
54.149.51.98
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0FTzcfV+tAqbOI1M7md6D0BjwD4=
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /css?family=Open+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700%7CCrimson+Pro%3A400%7CLato%3A400&display=swap&ver=11.5.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://foodheed.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 17:58:33 GMT
date: Wed, 07 Dec 2022 17:58:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 07 Dec 2022 12:24:27 GMT
etag: "172a9-639085fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 07 Dec 2022 12:24:27 GMT
etag: "d9-639085fb-0;;;"
accept-ranges: bytes
content-length: 217
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=6ea45b81e47c58269b68289d05535e19x HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 28 Sep 2022 16:22:23 GMT
etag: "92ec-633474bf-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4410
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/themes/Newspaper/style.css?ver=11.5.1 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 28 Sep 2022 16:17:06 GMT
etag: "24a56-63347382-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24019
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=6ea45b81e47c58269b68289d05535e19x HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 28 Sep 2022 16:22:25 GMT
etag: "27b2d-633474c1-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23083
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 07 Dec 2022 12:24:27 GMT
etag: "2bd8-639085fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 07 Dec 2022 12:24:27 GMT
etag: "15e54-639085fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/2022/10/images.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 05 Oct 2022 21:57:04 GMT
etag: "34c2-633dfdb0-0;;;"
accept-ranges: bytes
content-length: 13506
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://foodheed.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 599080
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://foodheed.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 599059
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://foodheed.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 169553
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://foodheed.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 17:11:08 GMT
expires: Wed, 06 Dec 2023 17:11:08 GMT
cache-control: public, max-age=31536000
age: 89246
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7323
Expires: Wed, 07 Dec 2022 20:00:37 GMT
Date: Wed, 07 Dec 2022 17:58:34 GMT
Connection: keep-alive
|
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Wed, 07 Dec 2022 12:24:28 GMT
etag: "48b9-639085fc-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7323
Expires: Wed, 07 Dec 2022 20:00:37 GMT
Date: Wed, 07 Dec 2022 17:58:34 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7323
Expires: Wed, 07 Dec 2022 20:00:37 GMT
Date: Wed, 07 Dec 2022 17:58:34 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7323
Expires: Wed, 07 Dec 2022 20:00:37 GMT
Date: Wed, 07 Dec 2022 17:58:34 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7323
Expires: Wed, 07 Dec 2022 20:00:37 GMT
Date: Wed, 07 Dec 2022 17:58:34 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2j9gqNvWYRFM-li9Nj4nLAWe_eKWMSwagPgU3eAtk0pjcJUX4Q8XEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
age: 72174
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViuPsZBEVJ-aGOcsfrl3nXu244mzMUMQVhpPeNlO7W3sBrrfuUfXpA==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:32:04 GMT
age: 69990
etag: "36082b7329d473829178f280cb71a83b1531e486"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 06:11:41 GMT
age: 42413
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4ORpzqbzQyJz_i3wpxf_07mXK3ovj1JT8kn-M9fdrGRgDVig7hhN5w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 12:20:15 GMT
age: 20299
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6846
x-amzn-requestid: 53452103-6559-460c-ac40-4685e6816aa4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGx4E-mIAMFatg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a5-5327ec9a2f247cc91654df80;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Znjnq24wuXoi43Bfc9aPdcUHhMh-a00hSCXUHFpHq3sTtQQoUYe6Uw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:10:36 GMT
age: 38878
etag: "6d55b299f906908309f91eaf0a720ad65866db04"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8701
x-amzn-requestid: 653284c3-ee7f-45f1-9513-3a6c81e1d6e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cm3-2HRWIAMFjfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c39f8-6f8969a26787a9463ba6c2ec;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 06:11:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpyIdH9YEXjxbGhZpBIfzoZHQxMvAKl0eCFQsgMt0e1SSeWsiuey7g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:15:06 GMT
age: 71008
etag: "ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "0BDCB65A76CC55A23E73819F3BCFF61058324181C21BF886A4D2F31B0E74182F"
Last-Modified: Tue, 06 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10163
Expires: Wed, 07 Dec 2022 20:47:57 GMT
Date: Wed, 07 Dec 2022 17:58:34 GMT
Connection: keep-alive
|
GET /wp-content/uploads/2022/09/fresh-solanum-tuberosum-potatoes-irish-potato-wooden-background-copy-space-fresh-solanum-tuberosum-potatoes-irish-potato-251947463-768x432.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Wed, 21 Sep 2022 18:24:14 GMT
etag: "86ac-632b56ce-0;;;"
accept-ranges: bytes
content-length: 34476
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, copyright=Songwuth Suwannawong | Dreamstime.com], baseline, precision 8, 768x432, components 3\012- data
Size: 34476
Md5: 598e4b65ab4e930e60a5797b2703a682
Sha1: 9d7ae01277f4647c1de61c956c9721a613c59fe8
Sha256: 531edcfb33f2d82d5fb388eb5daef884997148769babb8cde46582329e4ee237
Blocklists:
- mnemonic_dns: Sinkholed
- quad9: Sinkholed
|
GET /src/main.js?v=2.01 HTTP/1.1
Host: way.specialblueitems.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://foodheed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
 159.69.234.10
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Wed, 07 Dec 2022 17:58:35 GMT
Last-Modified: Wed, 07 Dec 2022 11:43:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63907c4f-2604"
Expires: Sat, 17 Dec 2022 17:58:35 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=11.5.1 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Wed, 28 Sep 2022 16:22:25 GMT
etag: "44c89-633474c1-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 61906
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/2022/09/facts-fats-768x402.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Fri, 23 Sep 2022 20:09:18 GMT
etag: "1648a-632e126e-0;;;"
accept-ranges: bytes
content-length: 91274
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=\302\251samael334 - stock.adobe.com], baseline, precision 8, 768x402, components 3\012- data
Size: 91274
Md5: 83a396f0baac36df808b2493ca3c1331
Sha1: 3cf861ab75b8752124a7c15d0d53aa905aa3f974
Sha256: b3585f0c6f59995830c8878d7ce9381ca6291c6e109de0b9ebdec6759835e5f1
Blocklists:
- mnemonic_dns: Sinkholed
- quad9: Sinkholed
|
GET /wp-content/uploads/2022/10/beef-biryanirf.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Sun, 02 Oct 2022 17:45:08 GMT
etag: "1aeeb-6339ce24-0;;;"
accept-ranges: bytes
content-length: 110315
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/2022/10/FB_IMG_16620604511201920-768x960.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 05 Oct 2022 22:26:25 GMT
etag: "2717b-633e0491-0;;;"
accept-ranges: bytes
content-length: 160123
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?20 HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://foodheed.com/wp-content/themes/Newspaper/style.css?ver=11.5.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: application/font-woff
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Wed, 28 Sep 2022 16:17:06 GMT
etag: "703c-63347382-0;;;"
accept-ranges: bytes
content-length: 28732
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/2022/09/bg8.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Wed, 28 Sep 2022 16:39:08 GMT
etag: "1c85b-633478ac-0;;;"
accept-ranges: bytes
content-length: 116827
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E2D3F729C0697974845AAEB59AE4D31790E2EF3C7FFC17489E06F11F9E2645D8"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=830
Expires: Wed, 07 Dec 2022 18:12:25 GMT
Date: Wed, 07 Dec 2022 17:58:35 GMT
Connection: keep-alive
|
GET /scripts/trim.js HTTP/1.1
Host: js.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://foodheed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
 193.169.194.63
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Wed, 07 Dec 2022 17:58:35 GMT
Last-Modified: Wed, 07 Dec 2022 11:41:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63907bd9-192c"
Expires: Sat, 17 Dec 2022 17:58:35 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "03BEBE8919D9E161FD41DB70E90215ED44CD27F71FBA29AC319E94F10F9D67A7"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4135
Expires: Wed, 07 Dec 2022 19:07:31 GMT
Date: Wed, 07 Dec 2022 17:58:36 GMT
Connection: keep-alive
|
GET /go/brad-way.php?id=16477-22-569654345&pid=235&qid=473 HTTP/1.1
Host: long.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://foodheed.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
193.169.194.63
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Wed, 07 Dec 2022 17:58:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://long.interestmoments.com/go/brad-way.php?id=568658-12-0956346&pid=3457&lid=05679333&jid=38834&from=tearful
Access-Control-Allow-Origin: *
|
GET /go/brad-way.php?id=568658-12-0956346&pid=3457&lid=05679333&jid=38834&from=tearful HTTP/1.1
Host: long.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
193.169.194.63
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Wed, 07 Dec 2022 17:58:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
GET /wp-content/uploads/2022/09/bg_mobile.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:34 GMT
last-modified: Wed, 28 Sep 2022 16:39:01 GMT
etag: "50846-633478a5-0;;;"
accept-ranges: bytes
content-length: 329798
date: Wed, 07 Dec 2022 17:58:34 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
GET /?faff=2543 HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
108.156.60.56
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Wed, 07 Dec 2022 17:58:37 GMT
set-cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; expires=Wed, 14-Dec-2022 17:58:37 GMT; Max-Age=604800; path=/; domain=biamo.bet
faff=faff%3D2543; expires=Wed, 14-Dec-2022 17:58:37 GMT; Max-Age=604800; path=/; domain=biamo.bet
sitelang=en; expires=Fri, 06-Jan-2023 17:58:37 GMT; Max-Age=2592000; path=/
x-geo-detected: nor
x-accept-language: en-US
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: private,no-store,no-cache,max-age=0
x-monitor: bff8fb57bcbfa445bf9fa60c030563dc,msec:1670435917.201
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: tQuLrQHR9aPUWwA5QayujOyY3TRRjn5jaxTbf4C3UjpTVBAWvd_xHw==
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/2022/10/CampfireCake600x600.jpg HTTP/1.1
Host: foodheed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foodheed.com/irtu/?QBOT.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
199.188.200.95
HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 17:58:33 GMT
last-modified: Wed, 05 Oct 2022 22:19:28 GMT
etag: "1852b-633e02f0-0;;;"
accept-ranges: bytes
content-length: 99627
date: Wed, 07 Dec 2022 17:58:33 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5555
Cache-Control: 'max-age=158059'
Date: Wed, 07 Dec 2022 17:58:37 GMT
Last-Modified: Wed, 07 Dec 2022 16:26:02 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
|
GET /gtm.js?id=GTM-P75XW8W HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
172.217.21.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 17:58:37 GMT
expires: Wed, 07 Dec 2022 17:58:37 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56997
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 344
ETag: "9EC774D0FD58CCBCBF92909CC64EFA6E68C1DCBEED740E2E329F9AD74DA1B288"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5143
Expires: Wed, 07 Dec 2022 19:24:20 GMT
Date: Wed, 07 Dec 2022 17:58:37 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E74BD300B4872F26D89B475EDB7F8B2BE9F538C3C0488D0CF9014B2F2662475B"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9905
Expires: Wed, 07 Dec 2022 20:43:42 GMT
Date: Wed, 07 Dec 2022 17:58:37 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 344
ETag: "9EC774D0FD58CCBCBF92909CC64EFA6E68C1DCBEED740E2E329F9AD74DA1B288"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5143
Expires: Wed, 07 Dec 2022 19:24:20 GMT
Date: Wed, 07 Dec 2022 17:58:37 GMT
Connection: keep-alive
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /activityi;src=11641679;type=users00;cat=all_u0;ord=6212697906731;gtm=2wgbu0;auiddc=1020922586.1670435917;~oref=https%3A%2F%2Fbiamo.bet%2F%3Ffaff%3D2543? HTTP/1.1
Host: 11641679.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
142.250.74.38
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 17:58:37 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 239
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Dec-2022 18:13:37 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /static/dist/polyfills.7c4e8a3bf53f3c3e.js HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/?faff=2543
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 07 Dec 2022 15:16:09 GMT
last-modified: Wed, 07 Dec 2022 09:01:54 GMT
etag: W/"63905682-1322b"
expires: Thu, 08 Dec 2022 15:16:09 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: TkTS54l9CBoe30As0bPsN4fgONM9fFROLKswCkwqp1_0VIvaElALZw==
age: 9748
X-Firefox-Spdy: h2
|
GET /ddm/fls/i/src=11641679;type=users00;cat=all_u0;ord=6212697906731;gtm=2wgbu0;auiddc=1020922586.1670435917;~oref=https%3A%2F%2Fbiamo.bet%2F%3Ffaff%3D2543 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11641679.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
142.250.74.34
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 17:58:37 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 239
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /ddm/fls/i/src=11641679;type=users00;cat=all_u0;ord=6212697906731;gtm=2wgbu0;auiddc=1020922586.1670435917;~oref=https%3A%2F%2Fbiamo.bet%2F%3Ffaff%3D2543 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
142.250.74.34
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 17:58:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://11641679.fls.doubleclick.net/ddm/fls/r/src=11641679;type=users00;cat=all_u0;ord=6212697906731;gtm=2wgbu0;auiddc=1020922586.1670435917;~oref=https%3A%2F%2Fbiamo.bet%2F%3Ffaff%3D2543
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /LAIA.js?sub1=biamobet HTTP/1.1
Host: zeniocloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
 167.114.67.56
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx/1.18.0 (Ubuntu)
date: Wed, 07 Dec 2022 17:58:37 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11641679.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.162
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 07 Dec 2022 17:58:38 GMT
expires: Wed, 07 Dec 2022 17:58:38 GMT
cache-control: private, max-age=3600
etag: 6351308751113588399
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16823
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /api/v1/games?slim=true HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://biamo.bet/?faff=2543
Connection: keep-alive
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.1.143091376.1670435917
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/json; encoding=utf-8
content-length: 293275
server: nginx
date: Wed, 07 Dec 2022 17:58:38 GMT
x-geo-detected: nor
content-encoding: gzip
x-accept-language: en-US
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: private,no-store,no-cache,max-age=0
x-monitor: bff8fb57bcbfa445bf9fa60c030563dc,msec:1670435918.066
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 48aXhOobrde3SIMx9_IxyyoiPn4bYjVhc1qGu3z2oz1qDy7v_Z13yw==
X-Firefox-Spdy: h2
|
GET /api/v1/bootstrap HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://biamo.bet/?faff=2543
Connection: keep-alive
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.1.143091376.1670435917
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/json; encoding=utf-8
content-length: 11016
server: nginx
date: Wed, 07 Dec 2022 17:58:38 GMT
x-geo-detected: nor
content-encoding: gzip
x-accept-language: en-US
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=0, no-cache, no-store, must-revalidate, private, private,no-store,no-cache,max-age=0
x-monitor: bff8fb57bcbfa445bf9fa60c030563dc,msec:1670435918.075
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: QPApw7wF4wI7FFSL1JAFOee96EA6gARuSXlIpfsU-rZzP4njfQVjPg==
X-Firefox-Spdy: h2
|
POST /s/gts1p5/Ixty6-fFKeo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /g/collect?v=2&tid=G-4L2GVL08BD>m=2oebu0&_p=1460333489&cid=143091376.1670435917&ul=en-us&sr=1280x1024&_s=1&sid=1670435917&sct=1&seg=0&dl=https%3A%2F%2Fbiamo.bet%2F%3Ffaff%3D2543&dt=BiamoBet&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://biamo.bet
Connection: keep-alive
Referer: https://biamo.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
|
216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
access-control-allow-origin: https://biamo.bet
date: Wed, 07 Dec 2022 17:58:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /static/images/logo.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/static/css/app.loader.css
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.1.143091376.1670435917
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:38 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-205d"
expires: Thu, 08 Dec 2022 17:58:38 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: BoWgqqj-r8r4F-SowlOs6BFgSsrAvHvz85vzVTnBe3Mddg9baIelzw==
X-Firefox-Spdy: h2
|
GET /gtm/optimize.js?id=OPT-TPW6QGT HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.110
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 17:58:38 GMT
expires: Wed, 07 Dec 2022 17:58:38 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43949
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /flog HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://biamo.bet/?faff=2543
Content-Type: text/plain;charset=UTF-8
Origin: https://biamo.bet
Content-Length: 114
Connection: keep-alive
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.1.143091376.1670435917
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/octet-stream
server: nginx
date: Wed, 07 Dec 2022 17:58:38 GMT
last-modified: Wednesday, 07-Dec-2022 17:58:38 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: pXFDdjT2ETUgBXd8rV_GX17vnE2UZNKNuT2qXV1SMELjl2RVvBpLvQ==
X-Firefox-Spdy: h2
|
GET /static/dist/main.27ecb0b86bc93f8a.js HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/?faff=2543
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 07 Dec 2022 15:16:09 GMT
last-modified: Wed, 07 Dec 2022 09:01:54 GMT
etag: W/"63905682-28dcb0"
expires: Thu, 08 Dec 2022 15:16:09 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 3NABNzniX60KHBSjZmrf123Hy4Pf8C8a0Pnx_esyHM5z8PB25YcKzQ==
age: 9748
X-Firefox-Spdy: h2
|
GET /ngsw-worker.js HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.1.143091376.1670435917
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 07 Dec 2022 17:58:38 GMT
last-modified: Wed, 07 Dec 2022 09:01:55 GMT
etag: W/"63905683-103ee"
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: nMVhgGksKD5-eV2I-IDN4d3UBL37WsSIhTZK__KWsycrodFuplM6Vw==
X-Firefox-Spdy: h2
|
GET /pagead/viewthroughconversion/10847281060/?random=1923268104&cv=9&fst=1670435918052&num=1&npa=1&label=4clwCIT13ZkDEKS_sbQo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11641679.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11641679%3Btype%3Dusers00%3Bcat%3Dall_u0%3Bord%3D6212697906731%3Bgtm%3D2wgbu0%3Bauiddc%3D1020922586.1670435917%3B~oref%3Dhttps%253A%252F%252Fbiamo.bet%252F%253Ffaff%253D2543&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=TtSQY-KFHrCK-cAPhb2ayAI&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11641679.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
|
172.217.21.162
HTTP/2 302 Found
content-type: image/gif
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 17:58:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/10847281060/?random=1923268104&cv=9&fst=1670435918052&num=1&npa=1&label=4clwCIT13ZkDEKS_sbQo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11641679.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11641679%3Btype%3Dusers00%3Bcat%3Dall_u0%3Bord%3D6212697906731%3Bgtm%3D2wgbu0%3Bauiddc%3D1020922586.1670435917%3B~oref%3Dhttps%253A%252F%252Fbiamo.bet%252F%253Ffaff%253D2543&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=TtSQY-KFHrCK-cAPhb2ayAI&random=3908621497&resp=GooglemKTybQhCsO
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Dec-2022 18:13:38 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /s/gts1p5/Ixty6-fFKeo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:58:38 GMT
Content-Length: 938
Connection: keep-alive
Expires: Sun, 11 Dec 2022 14:52:31 GMT
ETag: "ca27e395d7988fafddd0b3a844d4d7e5caa778fc"
Last-Modified: Wed, 07 Dec 2022 14:52:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1729
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775f268c0e820b49-OSL
|
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
77.88.21.119
HTTP/2 200 OK
content-type: application/javascript
content-length: 73266
date: Wed, 07 Dec 2022 17:58:38 GMT
access-control-allow-origin: *
etag: "638eb36c-11e32"
expires: Wed, 07 Dec 2022 18:58:38 GMT
last-modified: Tue, 06 Dec 2022 06:13:48 GMT
cache-control: max-age=3600
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
GET /static/dist/common.ebd2e2658d2ed4ff.js HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/javascript
content-length: 484
server: nginx
date: Wed, 07 Dec 2022 17:58:39 GMT
last-modified: Wed, 07 Dec 2022 09:01:54 GMT
etag: "63905682-1e4"
expires: Thu, 08 Dec 2022 17:58:39 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: LEB6n6-nj4ftuwerjleQEbJbpjySmHUkNI2adsK-8CqCn0xSdrFy1g==
X-Firefox-Spdy: h2
|
GET /static/dist/915.556573d7286805d2.js HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 07 Dec 2022 17:58:39 GMT
last-modified: Wed, 07 Dec 2022 09:01:54 GMT
etag: W/"63905682-4f5"
expires: Thu, 08 Dec 2022 17:58:39 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: MTV5dDtuWpYcJYBW2pGrwW1nrKT4IzEiO3Q8J95qh1UHVleIyBn8xw==
X-Firefox-Spdy: h2
|
GET /static/languages/en.json?v=20221207.135 HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Wed, 07 Dec 2022 17:58:39 GMT
last-modified: Wed, 07 Dec 2022 09:01:57 GMT
etag: W/"63905685-1537"
expires: Thu, 08 Dec 2022 17:58:39 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 4slxypvtDV1RIxLyboj2Lx_ONRDib6pivQcDgJ634I7oq5avStAw1A==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/burger.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 153
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:19:17 GMT
etag: "6347f435-99"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: _xwwlqXl0M4Z68uoHAIXIR2lG2e-IXL92r9X6vM1ftVBZwJgJa_1MA==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/search.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 386
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:19:17 GMT
etag: "6347f435-182"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: SfRZ93DLVmEoiqyjeLuxO1lJQdZRJDxuxlcmq4RFrLCVsQIYSUucMw==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/scroll-up.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 388
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:24:29 GMT
etag: "6347f56d-184"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: xzfrp-oqmhe8fIEVOZfmopmvqzvsINNF07KFWxMIKypbmtu5F0LClg==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/european/v1/promotions.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 718
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:19:17 GMT
etag: "6347f435-2ce"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: bvEnXOa_MAQ7Q7pquzupnsr-jzSZ4hqkG1jeGb1WRtvG1HhVVjwX8g==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/european/v1/tournaments.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1088
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:24:30 GMT
etag: "6347f56e-440"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: arvNfVUlJlXluPo5yS2DDQfZ6nuqPmnAqczLWChBaU45cLx8tfqzPg==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/european/v1/casino.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 858
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:19:17 GMT
etag: "6347f435-35a"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: agIXjOWeGynitbPPvQraA3E_-u2jlRV_PxhauqP37SZXmNe0dVeA-g==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/european/v1/sportsbook.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 571
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:19:17 GMT
etag: "6347f435-23b"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: PXFHZtUqoeBJuJRfq-pR7C3c-PZx2DUpKYgfFdMqj5ev4gNCsPpgkw==
X-Firefox-Spdy: h2
|
GET /static/dist/667.f5f07494ca992278.js HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Wed, 07 Dec 2022 09:01:54 GMT
etag: W/"63905682-2607d"
expires: Thu, 08 Dec 2022 17:58:40 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: eQlJh2Ca-oc4U1wFea4FJjGC-zCBAi3aXmTa7CafWE5_w8nYXRUzTQ==
X-Firefox-Spdy: h2
|
GET /static/fonts/montserrat/Montserrat-400.woff2 HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://biamo.bet/static/dist/styles.e6fc399f64891d18.css
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 88804
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: "639055c0-15ae4"
expires: Thu, 08 Dec 2022 17:58:40 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: VOxDv0ZSEBalfrI80Rt5wSBphY3BTGHmZLOGOGg4ji1n5nzH9bm10g==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/filter-merchants.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 795
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Thu, 13 Oct 2022 11:19:17 GMT
etag: "6347f435-31b"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:40 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: mktSnNr7OA4DPzBMkE4tP45dq7SE541is0lVjs2orv8STc1fRoAXNQ==
X-Firefox-Spdy: h2
|
GET /gstatic/wlc/icons/age-restrictions.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1141
server: nginx
date: Wed, 07 Dec 2022 17:58:41 GMT
last-modified: Thu, 13 Oct 2022 11:24:29 GMT
etag: "6347f56d-475"
content-encoding: gzip
expires: Wed, 07 Dec 2022 18:58:41 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: Vg1cPpSPYdX8PFBPCpCWnpj4lDqWXEYfBzx98iPoSjwkbHYzAwNpTw==
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8e8fa64-7cd3-460d-9040-af3ca0e2a5f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10567
x-amzn-requestid: b9b16cdf-bfa2-4e3c-b00f-1704dd3473d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgIC6EgLoAMF3hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638986df-3945eea57676d3f91f8f2b3c;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 05:02:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jq1EHQBqVeb9KBozcSUpieXUDHhouxr6YkJrhiqqZ4VP1ZwPV6LHEA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 03:57:34 GMT
age: 50467
etag: "c74d29bba44dbb09158da4b9e1b490112c7db915"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /static/images/categories/lobby.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 940
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: "639055c0-3ac"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: xB7bOLcCdMeBxwHjQBui_2PKv1U64v368qdWUBXcbsUxLBOb3vksOA==
X-Firefox-Spdy: h2
|
GET /gstatic/categories/halloween.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: gQA_Q1yAAr8HkspNa3-wImJQXqoxpZUh-O5GpP_dooL-jDry38MG4A==
X-Firefox-Spdy: h2
|
GET /api/v1/jackpots?lang=en¤cy=EUR HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-UA-Fingerprint: 17250ada99912788642c1a45a66515be
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 41
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-geo-detected: nor
expires: Wed, 07 Dec 2022 17:58:52 GMT
x-accept-language: en-US
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: private,no-store,no-cache,max-age=0
x-monitor: bff8fb57bcbfa445bf9fa60c030563dc,msec:1670435922.191
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: NgBhl_4T5kvSgg1vQGvp5iDbPXLHTbfo3QWu5NEIiVtJS29u27Y2ew==
X-Firefox-Spdy: h2
|
GET /gstatic/categories/crashgame.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: b1bwyLBDMDuo2PsQG7ZcS0jm0Wx5nQW6IGEeP98ytPSlAjDhGabP0A==
X-Firefox-Spdy: h2
|
GET /static/fonts/montserrat/Montserrat-700.woff2 HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://biamo.bet/static/dist/styles.e6fc399f64891d18.css
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 88708
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: "639055c0-15a84"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: EhVTGTetH-cGgj8QKF7la9sFAgphdp7bEIOeJcwA4Utxh4X7EhE5xw==
X-Firefox-Spdy: h2
|
GET /scripts/k_biamo_bet.js HTTP/1.1
Host: scripts.prdredir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
172.64.161.2
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Wed, 07 Dec 2022 17:58:37 GMT
status: 200 OK
cache-control: max-age=0, public
access-control-allow-origin: *
x-request-id: 61de264d-ed58-49a7-8ee9-6a9f2515048e
etag: W/"448d305ad6e8d6b57c5e4d37afbf26c7"
x-runtime: 0.007254
expires: 2022-11-07 17:58:37 UTC
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wXqCLe3YxC1HApAFei4ItpYWYARpi2u2xuFe81I%2Fzlq011XMrubXQP3qU1tinhrLoP3fG25EBGURgmMGDjQrXywsVSJL7NnBsVj4%2BpsYeZMdRSUwusJtIePeIqPpVtWlp1GZ%2FV5csA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775f2684196876f6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /static/images/categories/videopoker.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-d48"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: rVQ2LaROiCC1i43R_fILvJ0tZQ64DcIMoqo5dlDCG1NfW8SsMxkoEA==
X-Firefox-Spdy: h2
|
GET /api/v1/wins?lang=en&limit=20&min=1&slim=1 HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-UA-Fingerprint: 17250ada99912788642c1a45a66515be
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-geo-detected: nor
expires: Wed, 07 Dec 2022 17:58:52 GMT
x-accept-language: en-US
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: private,no-store,no-cache,max-age=0
x-monitor: bff8fb57bcbfa445bf9fa60c030563dc,msec:1670435922.068
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: AYHAQYOuK7cq7HNLKhZ2ZYOVhdopB0eMnLa-Cxur1P5NPIfAqWS2tQ==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/northernlights.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 6KeRY_3m02yIfhhsBo1ZWT4Z4ry4s23kkXR3SZa-MIoBAVEdenvKjA==
X-Firefox-Spdy: h2
|
GET /static/dist/720.4c45d7cc0ea0bb3e.js HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 07 Dec 2022 17:58:40 GMT
last-modified: Wed, 07 Dec 2022 09:01:54 GMT
etag: W/"63905682-678d"
expires: Thu, 08 Dec 2022 17:58:40 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: brqABI_G_iOEwzV_Iz0wn7iIazQ975U0bHtyJHljEMaPpwAGWcpCUw==
X-Firefox-Spdy: h2
|
GET /static/images/categories/popular.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-660"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: vpqK1fg9qKEJ9r1ogJ1wT45WSKwZJOnOFUr03SPaLezzBaeTM_YaGg==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/electricelephant.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 9sucW0aG92j4JwKZ24qSRRRgjnzbqg0hk0k5Qv5Vc0TSBsxd0bsQwg==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/alchemy.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: yIXQ8AMaqa4Yh7T3PSOzJs29FjankmE6sqEHN7X8MsgLdNCncME1Jg==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/goldcoin.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: tmWcjLdJrRxzTs9qYIfvPjJyyEeFE3ixq29TEnQ_GPW1DvBbZu-sKw==
X-Firefox-Spdy: h2
|
GET /static/images/categories/bingo.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-bcd"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: K31XvCocavnQfDWIjLfVe45LrLw4c5ZpuGC9DtEUQXBmuzv8jY6qLA==
X-Firefox-Spdy: h2
|
GET /static/images/categories/tablegames.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-14de"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: tBZUhkLtkQmlffpgFv9G95sboISWfn_KOjdZwGbU0Tha6Tk8ip_Pvg==
X-Firefox-Spdy: h2
|
GET /static/images/categories/baccaratglobal.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-135f"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: aPnggsRXnfPTHYZpL070_6C2WuI2bwTjfddrurfquzMpv2bwEcFvEQ==
X-Firefox-Spdy: h2
|
GET /static/images/categories/blackjacks.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-4db"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: rT1Ej7JkeNluBNAGWYKJdOLi5pLqXJkXkkqFCW2Q_SXWrNu51f9fSg==
X-Firefox-Spdy: h2
|
GET /static/images/categories/slots.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-1bbd"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: kL-I7RRfOulPkP9ojxdA4DbUJm1U5Qg2aamflSRAHOrhX6oT9MdEsA==
X-Firefox-Spdy: h2
|
GET /static/images/categories/scratchcards.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-80b"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: T-tOtO7F2zJfpdZMSaNC9nY8E8_yVV_00eJap0l60Vj6CRzFcS_WGA==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/storm.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: pDxwaOvapu-dOTzVRDzuWXAWps0AweesO6skhoJFETRGhnVXNGBdaA==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/spearhead.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: XYikB6PSMzBYdOC_vl6Y8CyLEgf8jVN1Fmgaw-Z8LbNWx4yvelo5WA==
X-Firefox-Spdy: h2
|
GET /static/images/categories/jackpots.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-14bc"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: eiows6ogZk7EJtIZXR81HIabOPZ2fUnaCvi2-DxXZ0AevsLGsGyV9g==
X-Firefox-Spdy: h2
|
GET /static/images/categories/cayetano.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-79e"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: G8FtaZAMNqzbVSBYSHB9CxPJ2UUPjnnwCDg5HXGRrgdpHGhX84JnTw==
X-Firefox-Spdy: h2
|
GET /static/images/categories/pokerglobal.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-14c4"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: czB9eMkTTadh7e8aL-j82YHPwUwpRFXnER-SM064QCXNm1NZjHLE2w==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/skillzz.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: kVgWVmEelBeRsV67BbLZmCueVGug27Qu6Wd6QhD23MCw5LpxZPUkHw==
X-Firefox-Spdy: h2
|
GET /static/images/categories/virtualsports.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
last-modified: Wed, 07 Dec 2022 08:58:40 GMT
etag: W/"639055c0-813"
expires: Thu, 08 Dec 2022 17:58:42 GMT
cache-control: max-age=86400
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: UL7u86t2Rp9YxA_4FD-c3jGFSjFO6FyoVKc3hpYxp6Kk-yr_RBNpuw==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/rabcat.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: _4sSRj4f1D9wqq-IwROvDiq4A3Xj7gOV4ShQJ-SQutFaLLO0ZbcuPg==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/realistic.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
108.156.60.56
HTTP/2 404 Not Found
content-type: text/html
content-length: 146
server: nginx
date: Wed, 07 Dec 2022 17:58:42 GMT
x-cache: Error from cloudfront
via: 1.1 ee47c4d401aca1a1f5c2ee96ce3267e4.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: riZxmXBv3D0j91PI5I6xqE_PHMYwTh52ajDnTdSMii6KUwjHe7tnKA==
X-Firefox-Spdy: h2
|
GET /gstatic/merchants/svg/black/microgaming.svg HTTP/1.1
Host: biamo.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: public, max-age=31536000
Connection: keep-alive
Referer: https://biamo.bet/en
Cookie: _aff=system%3Dfaff%26id%3D2543%26data%3D%26params%3Dfaff%253D2543; faff=faff%3D2543; sitelang=en; _gcl_au=1.1.1020922586.1670435917; __user_id=uid-0439475507.0589206147; _ga_4L2GVL08BD=GS1.1.1670435917.1.0.1670435917.0.0.0; _ga=GA1.2.143091376.1670435917; _gid=GA1.2.620247108.1670435918; _gat_UA-199659057-1=1; _ym_uid=1670435919862160427; _ym_d=1670435919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
|
88.85.94.246